We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
browser redirected
Options
Comments
-
please explain what i have to upload thanks0
-
Delete the O4 - HKCU\..\Run: [dboledg] rundll32.exe "C:\Documents and Settings\tommy\Local Settings\Application Data\dboledg\dboledg.dll", DllInit
entry in hijackthis, and reboot!!
> . !!!! ----> .0 -
i think this is what your your looking
Authentium5.2.0.52010.02.22W32/Sinowal-based!Maximus
F-Prot4.5.1.852010.02.22W32/Sinowal-based!Maximus
Sophos4.50.02010.02.22Mal/Behav-365
Symantec20091.2.0.412010.02.22Suspicious.Insight0 -
see my previous post
it looks like a relatively new one, which is why most AV's aren't detecting it!!
> . !!!! ----> .0 -
Download MALWAREBYTES (Make sure you click 'DOWNLOAD LATEST VERSION')
http://www.filehippo.com/download_malwarebytes_anti_malware/
Open malwarebytes and goto UPDATE and click 'check for updates'. After its updated goto SCANNER and click PERFORM FULL SCAN then click SCAN
Post the COMPLETE log here AFTER youve deleted everything it finds:idea:0 -
have removed through hijack this and rebooted but the entry still remains at
"C:\Documents and Settings\tommy\Local Settings\Application Data\dboledg\dboledg.dll", DllInit0 -
If an updated malwarebytes doesn't pick it up, try these (as these av's are picking it up at virustotal)
http://files.f-prot.com/files/windows/fpav-windows-x86-hc-en.msi
or this
http://www.sophos.com/products/free-tools/sophos-threat-detection-test.html?utm_source=Non-campaign&utm_medium=Cross%20link&utm_campaign=Analyses-TDT-promo!!
> . !!!! ----> .0 -
i have malwarebytes version 1.440
-
Can you please open malwarebytes, goto LOGS and post the WHOLE of the last log
Please run COMBOFIX
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Shut down your anti virus
Follow the simple instructions it gives
Post the COMPLETE log it creates here (Split into sections if need be)
If it comes up with a RENAMING error then RIGHT click the exe file and RENAME and call it QWERTY (Making the complete file name 'QWERTY.exe') Or SAVE as 'QWERTY' on download:idea:0 -
Malwarebytes' Anti-Malware 1.44
Database version: 3759
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
18/02/2010 23:29:06
mbam-log-2010-02-18 (23-29-06).txt
Scan type: Quick Scan
Objects scanned: 113312
Time elapsed: 13 minute(s), 8 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244.1K Work, Benefits & Business
- 599K Mortgages, Homes & Bills
- 177K Life & Family
- 257.4K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards